CVE-2026-23555 โ€” Any guest issuing a Xenstore command accessing a node using the

/HIGH
CVE Notify vulnerabilitycvethreat-intel
CVE-2026-23555 โ€” Any guest issuing a Xenstore command accessing a node using the

๐Ÿšจ CVE-2026-23555 Any guest issuing a Xenstore command accessing a node using the (illegal) node path "/local/domain/", will crash xenstored due to a clobbered error indicator in xenstored when verifying the node path. Note that the crash is forced via a failing assert() statement in xenstored.

XSA-481 - Xen Security Advisories
xenbits.xenproject.org

What This Means For You

  • New vulnerability disclosed โ€” verify if your stack is exposed.

Related ATT&CK Techniques

T1210 Exploitation of Remote Services Initial Access T1068 Exploitation for Privilege Escalation Privilege Escalation

Indicators of Compromise

IDTypeIndicator
CVE-2026-23555 Vulnerability CVE-2026-23555
๐Ÿ”Ž
Get the full picture on this threat Use /org to search affected organizations, generate IOC briefs with /brief, and set watchlist alerts โ€” inside Telegram.
Try Intel Bot โ†’
Source & Attribution
Source PlatformTelegram
ChannelCVE Notify
Channel ID1129491012
Message ID158860
PublishedApril 10, 2026 at 23:56 UTC
Original Linkhttps://xenbits.xenproject.org/xsa/advisory-481.html

This content was curated and summarized by Shimi's Cyber World for informational purposes. It is not copied or republished in full. All intellectual property rights remain with the original author and source.

Believe this infringes your rights? Submit a takedown request.